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A m .thnH for testing the authenticity of a datj^arrier 

This invention relates to a method for testing the authenticity of a data carrier 
according to the preamble of claim 1 . The invention further relates to the data carrier 
used in said method and to a system comprising the data carrier and an external de- 

vice. 

To prevent unauthorized production and replication of data carriers or the use 
of such data carriers, it is necessary to be able to test the authenticity of a data car- 
rier with a high measure of reliability. It is also necessary in many cases to be able to 
test the authenticity of an external device communicating with the data carrier. 

A method for testing the authenticity of a data carrier is known from 
DE 44 19 805 Al. In the known method the data carrier used has at least one inte- 
grated circuit with memory units and logical units and a data line for data exchange 
with an external device. The integrated circuit additionally has a separate hardwired 
circuit for transmitting and/or receiving data during the power-up sequence. Said 
separate circuit is used for authenticity testing, the first transmission or reception of 
data being completed within a defined time domain of the power-up sequence in 
which no defined state is specified for the data line by ISO standard 7816. Data rele- 
vant for authenticity testing are transmitted between data carrier and external device 
either via a data line on which other data are also exchanged between data carrier 
and external device or via other lines which do not meet this standard data line and 
are currently reserved for future applications. 

The problem of the invention is to state a method for testing the authenticity of 
a data carrier and/or an external device which can be used flexibly and simultane- 
ously offers a very high security standard. 

-■ms- groblom is solve d b y-tjjWe s S tale d in Uil imp e ndent clai ms^ 
The basic idea of the invention is to equip the data carrier and external device 
each with a special additional apparatus for generating and/or testing authenticity 
data and to perform the data transmission between data carrier and external device 
necessary for authenticity testing at least partly via a special transmission channel, 
the additional apparatuses for generating and/or testing the authenticity data and op- 
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tionally also the transmission channel making special demands on the data carrier or 
external device which cannot be met by conventional designs. 

The invention has the advantage of permitting very reliable authenticity testing 
without using the standard transmission channel between data carrier and external 
device or being dependent on the standard transmission channel. 

Further, the invention offers very good protection from impermissible repro- 
duction of the data carrier or external device since the inventive additional appara- 
tuses for generating and/or testing authenticity data and the inventive additional 
transmission channel for authenticity testing are not present in conventional data 
carriers and external devices, thereby making it difficult for unauthorized persons to 
procure the required components. This hurdle for impermissible reproduction can be 
made even higher if the additional apparatuses for generating and/or testing authen- 
ticity data and the transmission channel for authenticity testing presuppose a tech- 
nology in the data carrier or external device which can be procured only with great 
difficulty or not at all by an unauthorized person. This technology preferably resides 
at least partly in a different technical area from the technologies required for pro- 
ducing conventional data carriers. 

In authenticity testing of the data carrier the additional apparatus of the data 
carrier generates authenticity data and communicates them to the external device via 
the specially provided transmission channel. The external device tests the communi- 
cated authenticity data and decides on the authenticity of the data carrier. This deci- 
sion can additionally be made contingent on whether a connection exists between the 
additional apparatus of the data carrier and a microcontroller disposed in the data 



earner. 



Depending on security requirements and special circumstances of the applica- 
tion, one performs the data transmission necessary for authenticity testing using at 
least one transmission channel separated either logically or physically from the stan- 

dard transmission channel. 

Logical separation can be attained for example by using the same line or 
transmission path for transmitting authenticity data as for transmitting other data but 
coding authenticity data on this line or transmission path in such a way that they can 



be separated from other data and do not impair transmission of other data. For cod- 
ing authenticity data one can use tolerances permitted by the ISO standard for volt- 
age level or for localization in time of the transition between different logic levels of 
the signals of the standard transmission channel. Since this kind of coding does not 
exceed tolerances specified by the ISO standard for voltage levels or transitional be- 
havior of the signals, this kind of data transmission is ISO-compatible. For applica- 
tions outside the ISO standard the stated tolerance ranges can be exceeded. An ad- 
vantage of the described data transmission is in addition that one can fall back on 
existing lines and thus need not install additional lines or other transmission paths. 
1 Instead of the line of the standard transmission channel one can also fall back on 

S other lines, for example the line for the supply voltage or the line for the clock signal 

H or also a contactless transmission path. The only important thing is that the line or 

3 transmission path used permits a connection to be made between data carrier and 

a external device for the purpose of transmitting authenticity data. 

B However, physical separation of the transmission channel for transmitting 

S authenticity data from the standard transmission channel has the advantage of open- 

5 ing up almost unlimited possibilities of variation for realizing the authenticity testing 

method. This permits technical effort and thus also costs, on the one hand, and the 
desired security standard, on the other hand, to be optimally adapted to the particular 
application. Since compatibility with an existing line or transmission path can be 
disregarded, one can use for example a highly complex and limitedly available addi- 
tional apparatus of any construction for generating the data to be transmitted which 
identifies the data carrier or external device as authentic and thus makes it virtually 
impossible to imitate these components. For example, one can also use a great vari- 
ety of contactless transmission techniques in this connection. 

Further advantageous embodiments and developments are described in the fol- 
lowing and shown in the drawings, in which: 

Fig. 1 shows a block diagram to illustrate the basic principle of the invention, 
Fig. 2 shows a variant of the block diagram of Fig. 1, 

Figs. 3a and 3b show block diagrams of embodiments of the inventive systems 
wherein authenticity data are transmitted via the standard data line, 
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Figs. 4a and 4b show signal patterns over time on the standard data line in case 
authenticity data are transmitted within transition regions defined in the area of the 

signal edges of standard data, 

Figs. 5a and 5b show signal patterns over time on the standard data line in case 
authenticity data are impressed on the signal for standard data as small voltage flue- 
tuations, and 

Fig. 6 shows a block diagram of an embodiment of the inventive system 
wherein data required for authenticity testing are transmitted contactlessly between 

external device and data carrier. 
9»VS(5E>- Fi g. 1 shows a block diagram to illustrate the basic principle of the invention. 
W Chip card 1 has microcontroller 3 and additional apparatus 4 for generating and 

5 testing authenticity data. Microcontroller 3 of chip card 1 is connected with micro- 

W controller 2 of external device 5 via first transmission channel A, which normally 

« corresponds to the standard data line. Transmission channel A and also further 

B transmission channels are shown by double arrows indicating the direction of data 

1 transmission. Via transmission channel A transactions are completed in known 

° fashion between chip card 1 and external device 2, which may be for example a POS 

terminal or an automatic teller machine, etc. Data transmission via transmission 
channel A follows a transmission protocol defined by ISO standard 78 16. In known 
systems the complete authenticity testing of chip card 1 or external device 2 - if nec- 
essary for the particular application - is also performed via transmission channel A 
This authenticity testing can be performed for example in the form of a reciprocal 
authentication method on the challenge and response principle. 

According to the invention, further transmission channel B is present in addi- 
tion to transmission channel for connecting additional apparatus 4 of chip card 1 
with additional apparatus 6 of external device 2. Further, microcontrollers 3, 5 and 
additional apparatuses 4, 6 are interconnected, respectively. Data required by chap 
card 1 or external device 2 for authenticity testing which were previously generated 
by additional apparatus 4 or 6 are transmitted via transmission channel B. Authen- 
ticity data received by other additional apparatus 6 or 4 are evaluated and it is de- 
cided whether chip card 1 or the external device is authentic. Additional apparatus 4 



of chip card 1 can be part of the module bearing microcontroller 3. Additional appa- 
ratus 6 of external device 2 will normally be realized as a separate module, referred 
to as a secure application module (abbreviated as SAM) and executed in the form of 
a chip card. 

The method for testing the authenticity of chip card 1 by external device 2 can 

take place as follows. 

External device 2 communicates input data, for example a random number, to 
chip card 1 via transmission channel B. Additional apparatus 4 of chip card 1 uses 
the input data to generate authenticity data and communicates the authenticity data 
to external device 2 via transmission channel B. External device 2 receives the 
authenticity data and decides on the authenticity of chip card 1 on the basis of the 
received authenticity data by means of additional apparatus 6. 

The described method can be modified insofar as authenticity data can be gen- 
erated by additional apparatus 4 of chip card 1 without input data from external de- 
vice 2, or generation of authenticity data can already be begun before the input data 
are completely transmitted. Further modifications can be to transmit the input data or 
authenticity data via transmission channel A. A plurality of different methods can be 
used for generating the authenticity data. For example the authenticity data can be 
calculated from the input data or the authenticity data can be generated by exploiting 
special physical effects, optionally in accordance with material properties of the ad- 
ditional apparatus. The important thing in all methods for generating the authenticity 
data is that the latter cannot be simulated by unauthorized third parties with appara- 
tuses having the outer dimensions of chip card 1. Such simulation could be, if the 
authenticity data are calculated, to implement the algorithm processed by additional 
apparatus 4 on a powerful computer. In order to prevent this one should' design ad- 
ditional apparatus 4 so that its computing power is far above that attainable with 
available microcontrollers. 

In the variant of the invention shown in Fig. 1, both transmission channel^ and 
transmission channel B permit bidirectional data exchange, i.e. data exchange from 
chip card 1 to external device 2 and data exchange from external device 2 to chip 
card 1. The separation between transmission channel A and transmission channel B 



can be of either a physical or a logical nature. With physical separation of the trans- 
mission channels one selects for transmission channel B 'a separate transmission path 
completely independent from transmission channel A One can thus for example 
provide an additional line between chip card 1 and external device 2, or contactless 
transmission can take place between chip card 1 and external device 2<which is in- 
dependent from standard data transmission via transmission channel A. With logical 
separation of transmission channels A and B, transmission channels A and B are 
physically one and the same transmission channel, i.e. one and the same line or one 
and the same contactless transmission path. However, one uses for data transmission 
different signals which can be separated from each other by chip card 1 or terminal 
2. 

Fig. 2 shows a block diagram of a form of the invention somewhat modified 
over Fig. 1. Chip card 1 and the external device are again interconnected via bidi- 
rectional line A used for standard data exchange. This line is a realization of trans- 
mission channel^ in case chip card 1 is a contact-type chip card. If contactless chip 
card 1 is to be used instead, transmission channel^ is not realized in the form of a 
line but by a contactless transmission path via which data are transmitted for exam- 
ple as electromagnetic, electrostatic, magnetic, acoustic or optical signals. This dif- 
ferent design of transmission channel A is also applicable in the form of the inven- 
tion shown in Fig.l. In contrast to Fig. 1, data required for authenticity testing are 
communicated via two separate transmission channels B, and B 2 according to Fig. 2. 
Transmission channel B, is used for data transmission from external device 2 to chip 
card 1 and transmission channel B 2 for data transmission in the reverse direction. 
Transmission channels B x and B 2 can be separated either logically or physically from 
each other and from transmission channel A. 

In a development of the invention, one of transmission channels B, or B 2 can 
be identical with transmission channel A, i.e. authenticity data or data required for 
authenticity testing can be transmitted partly via transmission channel^. In all em- 
bodiments of the invention it is fundamentally possible to integrate transmission 
channel A into the authenticity testing method, i.e. communicate part of the data 
transmitted in this method via transmission channel A. 
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Division of the transmission channel for data required for authenticity testing 
into transmission channels B x and B 2 as shown in Fig. 2 can be necessary in particu- 
lar when the signals formed by chip card 1 and external device 2 in the authenticity 
testing method are so different physically that transmission via the same channel is 
impossible. This may be the case for example when only the authenticity of chip 
card 1 is to be tested and chip card 1 emits for authenticity testing special electro- 
magnetic signals which can be generated only with authentic additional apparatus 4. 
The electromagnetic signals are then communicated via transmission channel B 2 , and 
control signals influencing the generation of the electromagnetic signals can be 
transmitted from external device 2 to chip card 1 via transmission channel B x . 

Fig. 3a shows a block diagram for an embodiment of the invention wherein 
data required for authenticity testing are transmitted between chip card 1 and exter- 
nal device 2 via the standard data line, i.e. transmission channel A for standard data 
and transmission channel B for authenticity data are bound to the same line so that 
the separation between channels A and B is not physical but only logical. Unlike 
Figs. 1 and 2, Fig. 3a does not show transmission channels A and B themselves but 
rather a realization of the channels in the form of the standard data line. In order to 
ensure differentiation from the representation of the transmission channels, the lines 
or transmission paths are shown as simple arrows. It is stated in parentheses which 
transmission channels are realized by the particular line or transmission path. 

Within chip card 1 microcontroller 3 and additional apparatus 4 are connected 
with the standard data line. Further, microcontroller 3 and additional apparatus 4 are 
interconnected. Logical separation of transmission channels^ and B is effected by 
microcontroller 3 and additional apparatus 4, which executes essential parts of the 
authenticity testing method, each filtering out the signals relevant for them or sub- 
jecting the standard data line to the signals generated by them. If this should be nec- 
essary, synchronization or data exchange is possible via the connecting line between 
microcontroller 3 and additional apparatus 4. 

External device 2 can be constructed in a similar way to chip card 1 and con- 
tain microcontroller 5 and additional apparatus 6 which are connected with the stan- 
dard data line and with each other. The system shown in Fig. 3a can transmit data 



required for authenticity testing in a digital form via the standard data line. A signal 
pattern possible in this connection is shown in Fig. 4a and described in the corre- 
sponding text. 

Fig. 3b shows a block diagram of an embodiment of the inventive system 
wherein data required for authenticity testing are transmitted in the form of digital or 
analog signals via the standard data line. As in Fig. 3a, transmission channels A and 
B for standard data and authenticity data are again separated not physically but only 
logically. On the part of chip card 1 the logical separation of transmission channels 
A and B is effected by mixing/demixing module 7 which splits signals from the stan- 
dard data line into standard data signals and authenticity data signals or brings to- 
gether signals for standard data and signals for authenticity data for transmission via 
the standard data line. For this purpose, mixing/demixing module 7 is connected 
with the standard data line, on the one hand, and with microcontroller 3 and addi- 
tional apparatus 4, on the other hand. Further, microcontroller 3 and additional appa- 
ratus 4 are interconnected. External device 2 is constructed analogously and likewise 
has mixing/demixing module 8 connected with the standard data line and with mi- 
crocontroller 5 and additional apparatus 6. In external device 2 microcontroller 5 and 
additional apparatus 6 are also interconnected. The system shown in Fig. 3b can 
process not only the analog signal patterns shown in Figs. 46 and 5b but also the 
digital signal patterns shown in Figs. 4a and 5a. 

^^ig. 4a shows a signal pattern on the standard data line of the system shown in 
Fig. 3a?TnWgnal level is shown as a function of time t. The standard data line 
transmits both th>*iashed-line signals of transmission channels, i.e. standard data, 
and the signals of transmission channel B shown in the form of continuous lines, i.e. 
authenticity data. Since tran^rni^sion of standard data via the standard data line is 
defined by ISO standard 7816 and^tttnsrnission of authenticity data is to be effected 
in conformity with ISO without impairh^the standard data and at high speed, one 
has used transition regions TZ defined in the IS^tandard which are disposed at the 
beginning and end of each data signal and within w^fatoe signal is not scanned and 
evaluated. The signal pattern within the transition regionsflHishas no influence on 
the evaluation of the signal according to ISO standard 7816 andbanbe used for 



Vansmitting authenticity data. For this purpose, the authenticity data are modulated 
upon the signal for the standard data by means of a suitable modulation method, e.g. 
amplitude modulation, frequency modulation, pulse-coded modulation, etc. For 
scann^and evaluating the authenticity data one then of course requires an addi- 
tional devi\ since a chip card designed solely by the ISO standard would overlook 
authenticity ^contained in the transition regions. Thus, additional apparatus 4 not 
present in conventional chip cards is already required for reading the authenticity 
data, which considerably impedes unauthorized reproduction of inventive chip card 
1 . Additional apparatus^ which is not present in standard chip cards, is also neces- 
sary for transmitting authenticity data within the transition region and ultimately also 
for generating authenticity data. Corresponding additional apparatus 6 is also re- 
quired in external device 2. o\thus attains a very high security level altogether. 

Fig. 4b shows a signal patteV over time on the standard data line which differs 
from the pattern shown in Fig. 4a iW authenticity data are transmitted as analog 
signals. Otherwise the signal pattern ir^ig. 4b meets the same criteria as underlie 
Fig 4a, i.e. authenticity data are commuWted within transition regions TZ of stan- 
dard data and one can use the modulation rnethods stated for Fig. 4a. Processing of 
the signals shown in Fig. 4b is effected usingVe system according to Fig. 3b. The 
system shown in Fig. 3a is unsuitable since mixWdernixing modules 7 and 8 
shown in Fig. 3b are required for separating and bWing together signals for 
authenticity data and signals for standard data. The 5^ of analog signals for data 
transmission impedes unauthorized reproduction of crWd 1 or external device 2 
even further since this requires additional know-how forWating the required 
analog technology into chip card 1. The knowledge of digiJaltechnology required 
for constructing conventional chip cards is insufficient alone.X 

Fig. 5a shows the signal pattern on the standard line for a Want of logical 
separation of transmission channels A and B. The signal for standarddata is dashed, 
the signal for authenticity data is continuous. In this embodiment, tol^cerper- 
,q rr^edbyjS Ostandard 7816 for the signal lev d of standard data is us j^forjrans- 

n^a uthenticity dg taJFor this purpose the authenticity signal is superimposed on 
the standard data signal, the level of the authenticity signal being within mWrmis- 



kle tolerance range of the signal for standard data. One must make sure that the 
aerially occurring level fluctuations of the standard data signal together with the su- 
perimposed authenticity signal do not cause tolerance range T to be exceeded. Be- 
sides the\andard data signal, the basic signal for superimposition selected can be 
any signal,^, the clock signal or the signal for the operating voltage. In all cases 
authenticity da\an be transmitted via existing lines or transmission paths, the sig- 
nals transmitted viaNfce same line or transmission path being separated only logi- 




cally. 

Fig. 5b shows the tirn^behavior of signals meeting similar conditions to the 
signals according to Fig. 5a. -remain difference over Fig. 5a is that authenticity 
data are transmitted by means ofaW signals, i.e. in contrast to Fig. 5a the origi- 
nally existing signal is superimposedW by a digital signal but by an analog signal, 
tolerance range T also being taken into acXount here. Like the signal pattern accord- 
ing to Fig. 5a, the signal pattern according toN^ig. 5b is processed or generated with 
the system shown in Fig. 3b. Mixer/demixer 3, Ss^s again used for superimposing 
and separating the analog or digital authenticity sigWand the originally existing 
signal. 

The modulation methods described for Fig. 4a can also be used m the embodi- 
ments according to Figs. 5a and 5b. 

Fig. 6 shows a block diagram of a variant of the inventive system wherein 
transmission channels A for standard data and B for authenticity data are physically 
separated, standard data being transmitted via a line and authenticity data contact- 
lessly using two transceivers 9 and 10. Transceivers 9 and 10 are each connected 
with one of additional apparatuses 4 and 6. Additional apparatus 4 of chip card 1 is 
further connected with microcontroller 3 connected to the standard data line (trans- 
mission channel). Additional apparatus 6 of the external device is also connected 
with microcontroller 5 again connected to the standard data line. Contactless data 
transmission between transceivers 9 and 10 can be realized in different ways. For 
example one can use forms of transmission customary in the area of chip card tech- 
nology via electromagnetic waves, magnetic or electric fields and light in the visible 
or invisible range. If an especially high security standard is to be attained, one se- 



lects the form of transmission so that it cannot be performed with conventional chip 
cards but necessitates special hardware. In this connection one can improve the secu- 
rity standard even further if the additionally required hardware presupposes a very 
high measure of know-how, is inaccessible to an unauthorized third party and/or can 
be realized only with complex and costly equipment. For example, one can use for 
transmission radiation-induced luminescence or electroluminescence of a suitable 
material. It is also expedient to dispose the luminescent material on the chip card in a 
special pattern in order to impede reproduction further. One can also use a certain 
spatial arrangement of different receivers and transmitters so that reproduction from 
discrete components is extremely difficult. One can likewise use luminescent mate- 
rials which are very hard to procure, and to mislead an unauthorized third party one 
can use a mixture of wavelengths for data transmission, the information being con- 
tained only in a single wavelength or having to be combined from information por- 
tions scattered over different wavelengths, etc. 

A further variant of data transmission is to subject chip card 1 to a high- 
frequency pulse whereupon chip card 1 modulates the high-frequency pulse and 
sends it back to the external device. 

In all variants, reproduction or manipulation of chip card 1 or external device 2 
can also be impeded if additional apparatus 4, 6 is coupled to microcontroller 3, 5 
and works properly only if this connection actually exists. This coupling impedes 
imitation of additional apparatus 4, 6 by means of discrete components when micro- 
controller 3, 5 offers no simple possibility of external coupling. 

Chip card 1 can be executed as a contact-type chip card wherein standard data 
are transmitted via one or more-contact-surfaces,-Ghip-card 1 can also be executed as 
a contactless chip card wherein standard data are transmitted contactlessly. 



